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DNS Primer 


DNS — What is it? 


* DNS: “Domain Name System” Phone Book 
e Maps names of servers on the DOG 202-324-3000 
Internet to numeric IP addresses A, Smith ............... 312-555-5555 


e Works similarly to the way phone 
directories map names to phone 


numbers DNS 


www.google.com ......... 142.251.40.164 
www.yahoo.com ......... 74.6.231.20 
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(G) Google 


<€<>cC<co @ google.com * a @ incognito 


@ Chrome File Edit View History Bookmarks Pro Root DNS Server 


O Google < + What is the IP for 
Ca â www.google.com — www.google.com? 
Tell 108.18.158.20. 


Local DNS (on the laptop): 
No idea, ask the OO e 
default DNS Server... 


A 


I don't know, ask the 
TLD server for .com 
(c.gtld-servers.net) 


User (108.18.158.20) 


What is the IP far www.google.com? 


.com TLD DNS Server 


Verizon FIOS DNS Server 


What is the IP for 
www.google.com? 
Tell 108.18.158.20. 


I don’t know, but the 
authoritative DNS 

servers for google.com are 
ns1.google.com 
ns2.google.com 


www.google.com =|142.251.40.206 


Google Search 


eer Certificate now availab! 


What is the IP for www.google.com? 
http (not DNS) connection 


Google Authoritative 
RO COW, DNS Server 
let me check with 
the root servers What is the IP for 


www.google.com? 
Tell 108.18.158.20. 


I can authoritatively 
say www.google.com 
Is 142.251.40.206 


Privacy Terms Settings 


www.google.com 
We b.Serve l'Business How Search works Ñ Carbon neutral since 2007 


Passive DNS 


Yahoo DNS Server 


o È 74.6.143.24 
ISP DNS Server 


User (108.18.158.20) PASSIVE DAS | 
What is the IP for www.fmtxdteatand?n? Sensor Google DNS Server 
Passive DNS Logs 
= 6198; 1 "qty! SE pl: it 
PR -esrde bid Bend [Oo Talib; Yahoo 32001] tick. 18 IES, 20 
"108.18.158.20/32","src_ip": "24.99. pea È Ebo 1,"ip ttl": 96,"dest_ip a 
202230. GETORIRA: 0215887 ch acfbooktcomi 1081183158. 20 31.13.71.36 
true, "ancount" > "client _ip": "108.18.158. 50" "bit_rd": true, }, Passive DNS 
assive 

{"date": ui : [1]: "ip": [”31.13.71.36"], "txid": S 
57127,"rcode": 0,"bit_qr": true, "type": "a","tt1": [300],"client_ip range": ensor 


"108.18.158.20/32","src_ip": "24.99.148.85","qdcount": 1,"ip ttl": 96,"dest_ip": 
"108.18.158.20", "qname": "www.facebook.com","name": ["www.facebook.com"],"bit_ra": 
true, "ancount": 1,"client_ip": "108.18.158.20","bit_rd": true,}, 


TOR Primer 


TOR (The Onion Router) 


e Open network designed to enable anonymity on the Internet 
e Operated by the TOR Project, a non-profit internet privacy organization 
* Runs through computers operated by volunteers 
* Each connection is routed through a different, random set of computers 
e Often in different countries 
e The TOR Project publishes a list of all TOR exit nodes 
* Data is available back to February 2010 
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Tor Network Basics 


ES) How Tor Works: 3 dp Tornode 
« » œ» Unencrypted link 
—» encrypted link 


Alice 
dl 
N = > È 


Step 3: If at a later time, the 
user visits another site, | 

Alice's Tor client selects a | | | | 
> 

le — 


second random path. = 


Again, green links are —= —= ' 
encrypted, red links are al ' 
O = n —- = I 

Là ram y LÌ 


in the clear. 


